Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
siemens sinec ins vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2020-8231
Due to use of a dangling pointer, libcurl 7.29.0 up to and including 7.71.1 can use the wrong connection when sending data.
Haxx Libcurl
Siemens Sinec Infrastructure Network Services
Debian Debian Linux 10.0
Oracle Communications Cloud Native Core Policy 1.14.0
Splunk Universal Forwarder 9.1.0
Splunk Universal Forwarder
7.5
CVSSv3
CVE-2020-7793
The package ua-parser-js prior to 0.7.23 are vulnerable to Regular Expression Denial of Service (ReDoS) in multiple regexes (see linked commit for more info).
Ua-parser-js Project Ua-parser-js
Siemens Sinec Ins 1.0
Siemens Sinec Ins
5.9
CVSSv3
CVE-2020-1971
The X.509 GeneralName type is a generic type for representing different types of names. One of those name types is known as EDIPartyName. OpenSSL provides a function GENERAL_NAME_cmp which compares different instances of a GENERAL_NAME to see if they are equal or not. This functi...
Openssl Openssl
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Fedoraproject Fedora 32
Fedoraproject Fedora 33
Oracle Api Gateway 11.1.2.4.0
Oracle Peoplesoft Enterprise Peopletools 8.56
Oracle Business Intelligence 12.2.1.3.0
Oracle Peoplesoft Enterprise Peopletools 8.57
Oracle Jd Edwards World Security A9.4
Oracle Business Intelligence 12.2.1.4.0
Oracle Enterprise Manager Base Platform 13.3.0.0
Oracle Business Intelligence 5.5.0.0.0
Oracle Peoplesoft Enterprise Peopletools 8.58
Oracle Enterprise Manager Base Platform 13.4.0.0
Oracle Http Server 12.2.1.4.0
Oracle Enterprise Manager For Storage Management 13.4.0.0
Oracle Enterprise Manager Ops Center 12.4.0.0
Oracle Mysql
Oracle Graalvm 19.3.4
Oracle Graalvm 20.3.0
Oracle Essbase 21.2
5 Github repositories
1 Article
9.8
CVSSv3
CVE-2020-7774
The package y18n prior to 3.2.2, 4.0.1 and 5.0.5, is vulnerable to Prototype Pollution.
Y18n Project Y18n
Y18n Project Y18n 4.0.0
Oracle Graalvm 20.3.1.2
Oracle Graalvm 21.0.0.2
Oracle Graalvm 19.3.5
Siemens Sinec Infrastructure Network Services
5.9
CVSSv3
CVE-2020-28168
Axios NPM package 0.21.0 contains a Server-Side Request Forgery (SSRF) vulnerability where an attacker is able to bypass a proxy by providing a URL that responds with a redirect to a restricted host or IP address.
Axios Axios
Siemens Sinec Ins 1.0
Siemens Sinec Ins
2 Github repositories
5.5
CVSSv3
CVE-2020-15358
In SQLite prior to 3.32.3, select.c mishandles query-flattener optimization, leading to a multiSelectOrderBy heap overflow because of misuse of transitive properties for constant propagation.
Sqlite Sqlite
Canonical Ubuntu Linux 20.04
Apple Iphone Os
Apple Watchos
Apple Icloud
Apple Tvos
Apple Ipados
Apple Macos
Oracle Outside In Technology 8.5.4
Oracle Outside In Technology 8.5.5
Oracle Hyperion Infrastructure Technology 11.1.2.4
Oracle Enterprise Manager Ops Center 12.4.0.0
Oracle Communications Network Charging And Control 12.0.2
Oracle Mysql
Oracle Communications Network Charging And Control 6.0.1
Oracle Communications Messaging Server 8.1
Oracle Communications Cloud Native Core Policy 1.14.0
Siemens Sinec Infrastructure Network Services
7.5
CVSSv3
CVE-2020-13871
SQLite 3.32.2 has a use-after-free in resetAccumulator in select.c because the parse tree rewrite for window functions is too late.
Sqlite Sqlite 3.32.2
Fedoraproject Fedora 33
Debian Debian Linux 9.0
Oracle Hyperion Infrastructure Technology 11.1.2.4
Oracle Enterprise Manager Ops Center 12.4.0.0
Oracle Communications Network Charging And Control 12.0.2
Oracle Communications Network Charging And Control 6.0.1
Oracle Zfs Storage Appliance Kit 8.8
Oracle Communications Messaging Server 8.1
Oracle Mysql Workbench
Siemens Sinec Infrastructure Network Services
Netapp Cloud Backup -
Netapp Ontap Select Deploy Administration Utility -
7
CVSSv3
CVE-2020-13630
ext/fts3/fts3.c in SQLite prior to 3.32.0 has a use-after-free in fts3EvalNextRow, related to the snippet feature.
Sqlite Sqlite
Fedoraproject Fedora 32
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 19.10
Canonical Ubuntu Linux 20.04
Canonical Ubuntu Linux 16.04
Netapp Cloud Backup -
Netapp Solidfire\\, Enterprise Sds \\& Hci Storage Node -
Brocade Fabric Operating System -
Netapp Hci Compute Node Firmware -
Debian Debian Linux 9.0
Siemens Sinec Infrastructure Network Services
Apple Iphone Os
Apple Watchos
Apple Tvos
Apple Ipados
Apple Icloud
Apple Itunes
Apple Macos
Oracle Outside In Technology 8.5.4
Oracle Outside In Technology 8.5.5
Oracle Communications Network Charging And Control 6.0.1
5.5
CVSSv3
CVE-2020-13631
SQLite prior to 3.32.0 allows a virtual table to be renamed to the name of one of its shadow tables, related to alter.c and build.c.
Sqlite Sqlite
Fedoraproject Fedora 32
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 19.10
Canonical Ubuntu Linux 20.04
Canonical Ubuntu Linux 16.04
Netapp Cloud Backup -
Netapp Solidfire\\, Enterprise Sds \\& Hci Storage Node -
Brocade Fabric Operating System -
Netapp Hci Compute Node Firmware -
Siemens Sinec Infrastructure Network Services
Apple Iphone Os
Apple Watchos
Apple Tvos
Apple Ipados
Apple Icloud
Apple Itunes
Apple Macos
Oracle Outside In Technology 8.5.4
Oracle Outside In Technology 8.5.5
Oracle Communications Network Charging And Control 6.0.1
Oracle Communications Network Charging And Control
1 Github repository
5.5
CVSSv3
CVE-2020-13632
ext/fts3/fts3_snippet.c in SQLite prior to 3.32.0 has a NULL pointer dereference via a crafted matchinfo() query.
Sqlite Sqlite
Fedoraproject Fedora 32
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 19.10
Canonical Ubuntu Linux 20.04
Canonical Ubuntu Linux 16.04
Netapp Cloud Backup -
Netapp Solidfire\\, Enterprise Sds \\& Hci Storage Node -
Brocade Fabric Operating System -
Netapp Hci Compute Node Firmware -
Debian Debian Linux 9.0
Siemens Sinec Infrastructure Network Services
Oracle Outside In Technology 8.5.4
Oracle Outside In Technology 8.5.5
Oracle Communications Network Charging And Control 6.0.1
Oracle Communications Network Charging And Control
Oracle Zfs Storage Appliance Kit 8.8
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »